2-519
Catalyst 6500 Series Switch Command Reference—Release7.6
78-15328-01
Chapter2 Catalyst 6500 Series Switch and ROM Monitor Commands set security acl log
set security acl logTo configure the security ACL log table, use the set security acl log command.
set security acl log maxflow max_number
set security acl log ratelimit pps
Syntax Description
Defaults The default max_number is 500 packets per second and the default ratelimit is 2500 packets per second.
Command Types Switch command.
Command Modes Normal.
Usage Guidelines The command is supported on systems configured with Supervisor Engine 2 with Layer 3 Switching
Engine II (PFC2) only.
The set security acl log maxflow command tries to allocate a new log table based on the maximum flow
pattern number to store logged packet information. If successful, the new buffer replaces th e old one and
all flows in the old table are cleared. If either memory is not en ough or the m aximum number is o v er th e
limit, an error message is displayed and the command is dropped.
The set security acl log ratelimit command tries to set the redirect rate in packets per second. If the
configuration is over the range, the command is discarded and the range is displayed on the console.
Examples This example shows how to set the maximum flow:
Console> (enable) set security acl log maxflow 322
Log table size set to 322 flow entries.
Console> (enable)
This example shows how to set the rate limit:
Console> (enable) set security acl log ratelimit 3444
Max logging eligible packet rate set to 3444pps.
Console> (enable)
Related Commands clear security acl log flow
set security acl log
show security acl log
maxflow
max_number Specifies the maximum flow pattern number in packets per second;
valid values are from 256 to 2048.
ratelimit pps Specifies the redirect rate in packets per second; valid values are
from 500 to 5000.